Announcement

Collapse
No announcement yet.

CVE-2017-9445: systemd Hit By New Security Vulnerability

Collapse
X
Collapse
 
  • Page of 9
  • Filter
  • Time
  • Show
Clear All
new posts
Previous 1 2 3 4 9 template Next
  • #1

    CVE-2017-9445: systemd Hit By New Security Vulnerability

    Phoronix: CVE-2017-9445: systemd Hit By New Security Vulnerability

    CVE-2017-9445 is regarding a vulnerability opened by systemd that could allow malicious actors to crash the program or run programs via a specially crafted DNS response...

    CVE-2017-9445: systemd Hit By New Security Vulnerability - Phoronix
    http://www.phoronix.com/scan.php?page=news_item&px=Systemd-OOB-Write-9445
    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
    Tags: None
  • #2
    Classic bait article. 10/10
    • Likes 7

    Comment

    • #3
      Originally posted by sdack View Post
      Classic bait article. 10/10
      Classic systemd fanboy response to a CVE concerning it. 1/10
      • Likes 10

      Comment

      • #4
        WTF? I though that systemd was a process launcher meant to replace initd!!!!
        • Likes 3

        Comment

        • #5
          Maybe the resolver ought to be written in Rust instead.
          • Likes 11

          Comment

          • #6
            Originally posted by lano1106 View Post
            WTF? I though that systemd was a process launcher meant to replace initd!!!!
            I am not trying to sound snarky or anything. But since the world of the digital moves along, you have to move along with it.
            Just as you have to update your system, you have to update yourself (with information). That logic applies to anything (the latter).
            • Likes 3

            Comment

            • #7
              At least they thought it was worthy of opening a CVE.
              • Likes 2

              Comment

              • #8
                Originally posted by uid313 View Post
                Maybe the resolver ought to be written in Rust instead.
                Well rust will reduce the attack surface but not eliminate it.
                • Likes 1

                Comment

                • #9
                  And this will be fixed in days(if not hours) by Red Hat. Unlike weeks for Microsoft or months for Apple when they get this type of bug.
                  • Likes 4

                  Comment

                  • #10
                    Originally posted by babali View Post

                    Well rust will reduce the attack surface but not eliminate it.
                    Rust would have eliminated this bug. And since these kind of bugs are by far the most common security bugs users should demand that more things get written in Rust.
                    I don't want my computer to crash or leak sensitive data just because some programmer can't bother to learn a new language or want to express their "art" in a specific way.
                    • Likes 6

                    Comment

                    Previous 1 2 3 4 9 template Next
                    Working...
                    X